Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
File: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft (raw, json)
Hash identifier: 74KZJ6S8Pz9VZVfL2ObPnv+K59+qlPopUF9YpQl/8eE=
Subject key identifier: 91:F3:5B:65:00:25:61:4C:2C:5B:24:C5:9C:7C:60:47:1E:7D:50:A6
Authority key identifier: D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
Certificate issuer: /CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Certificate serial: 0198D58399854721766B64A9F1CE7BD71DD4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
Manifest number: 0D3C
Signing time: Sat 23 Aug 2025 06:00:28 +0000
Manifest this update: Sat 23 Aug 2025 06:00:28 +0000
Manifest next update: Sun 24 Aug 2025 06:00:28 +0000
Files and hashes: 1: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl (hash: rytymjqSm5WVX/dwIHMwgaMPj9JHzpNmsDQCdXENz4k=)
2: wUSVu8lDNfoUWdaRO2jsDgRSmsg.roa (hash: A2CVwSparFGjp8/uMP7BcSnzpGUx0FpocYCZqqW30C8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:99:85:47:21:76:6b:64:a9:f1:ce:7b:d7:1d:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Validity
Not Before: Aug 23 06:00:28 2025 GMT
Not After : Aug 24 06:00:28 2025 GMT
Subject: CN=91f35b650025614c2c5b24c59c7c60471e7d50a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fe:c1:a6:b4:c1:50:42:03:56:6b:02:44:72:
96:55:04:90:bf:fe:a3:49:80:c9:3b:7d:ec:e5:37:
6e:2f:ce:22:9b:eb:c6:9b:c2:94:d3:66:50:d2:34:
09:75:ea:d8:13:05:39:cc:63:6c:a8:57:93:bc:be:
b9:60:b5:47:c5:dc:92:81:ea:29:07:03:cf:95:bb:
b1:13:40:d1:52:67:f2:43:28:4f:76:c0:a5:4c:0e:
16:9d:82:15:bd:8b:e3:33:12:2b:83:f9:5a:f4:4b:
ef:f0:18:ee:fb:1f:21:74:30:42:0d:8c:73:5c:51:
4d:8a:10:28:69:18:de:c9:a3:79:41:29:7d:ee:2b:
e4:3a:70:33:c9:4f:1a:dc:a3:76:1e:5c:9f:70:14:
36:fc:2f:35:6a:cf:7f:95:51:fb:34:6f:12:3e:b3:
1b:7e:65:79:09:e3:ba:df:2a:1b:8c:b6:6f:eb:3a:
56:76:90:ce:4f:f4:17:07:f1:7a:e2:83:28:06:3a:
01:67:2d:7d:29:c9:a7:97:c5:74:17:a0:9a:01:2b:
1c:f5:36:74:8b:ff:e8:74:f4:5b:c5:61:ac:89:23:
97:90:dd:ff:8f:2d:15:16:03:62:44:0c:75:b0:11:
af:13:6e:16:46:d8:e7:ab:41:68:ee:5b:34:de:2b:
51:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:F3:5B:65:00:25:61:4C:2C:5B:24:C5:9C:7C:60:47:1E:7D:50:A6
X509v3 Authority Key Identifier:
keyid:D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:d5:eb:75:37:23:c1:b4:e6:d0:73:15:af:62:93:52:39:56:
92:e8:74:2e:d3:3d:41:71:f0:fa:37:b1:e1:4a:78:f4:46:0a:
a7:a1:ab:26:e7:6a:66:6f:ee:62:4d:6f:bd:62:d9:39:41:37:
eb:98:95:60:40:33:07:e8:4a:84:8f:88:1a:78:40:65:c4:1c:
b4:39:60:9c:ce:d5:89:52:d9:ab:bd:22:37:ec:d2:95:ca:a1:
64:98:ec:82:cf:fb:4e:7e:49:1e:04:f9:67:a6:8a:25:15:0c:
cb:96:9f:00:1d:94:50:95:47:48:05:ce:09:0b:e1:ea:27:19:
bd:99:e5:0f:c6:5e:2f:48:fe:1c:ca:ff:a2:95:dd:a8:ff:b6:
66:fe:42:5e:02:c4:88:b8:f6:19:07:b9:da:f6:53:44:ce:c0:
42:8f:a3:d7:26:3e:85:a6:39:90:de:ee:5b:d0:ec:52:1b:31:
4a:b4:ec:9a:92:e5:72:c5:54:14:63:55:a8:27:b4:db:15:9d:
3e:fb:4c:d0:81:81:38:99:53:e5:cc:70:a0:ea:07:06:45:cd:
33:3d:e8:e6:17:94:fe:d1:b2:b4:da:f2:af:db:c7:57:46:48:
b6:95:6a:4f:05:d9:7c:71:fc:3b:c7:d6:8b:26:50:c0:8d:78:
88:00:d4:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:31:03 2025 by rpki-client